RESELLER | LOGIN
← Volte para a página principal
N-Stalker Latest Updates

CPanel vulnerabilities and new updates

By N-Stalker Team on April 3, 2007

N-Stalker has made available the latest database update for its Web Application Security Assessment Products. Following the support life-cycle, we are still distributing updates for previous version.

You will be able to download it automatically in the following versions:

  • N-Stalker Web Application Security Scanner 2006 (Enterprise, QA and Infrastructure Edition)
    • WSI Update (N-Stalker Update Manager)
  • N-Stealth HTTP Security Scanner (not updated)

You should be able to receive it automatically next time you execute the scanner.

If you prefer to download it manually, please, use the following url: https://customer.nstalker.com.

If you need any additional assistance during this process, please, contact us at:
Web: Open new support ticket at https://customer.nstalker.com
E-mail: http://www.nstalker.com/about/contact (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

  • OpenForum 1.2 Beta Openforum.ASP OFMSGID Cross-Site Injection Vulnerability
  • OpenForum 1.2 Beta Openforum.ASP OFDISP Cross-Site Injection Vulnerability
  • Advanced Webhost Billing System 2.2.2 Contact.PHP Multiple Cross-Site Scripting Vulnerabilities
  • Knusperleicht FileManager DWL_Include Remote File Include Vulnerability
  • Knusperleicht FileManager DWL_Download Remote File Include Vulnerability
  • Knusperleicht ShoutBox 4.4 Index.PHP SB_INCLUDE_PATH Remote File Include Vulnerability
  • Knusperleicht NewsLetter 3.5 Index.PHP NL_PATH Remote File Include Vulnerability
  • WoW Roster 1.5.1 HsList.PHP Remote File Include Vulnerability
  • WoW Roster 1.5.1 Conf.PHP Remote File Include Vulnerability
  • TSEP 0.942 Copyright.PHP Remote File Include Vulnerability
  • Knusperleicht FAQ 1.0 Script Index.PHP FAQ_PATH Remote File Include Vulnerability
  • 312Soft PhP-Gallery 0.9 Cross-Site Scripting Vulnerability
  • Knusperleicht GuestBook 3.5 Index.PHP GB_PATH Remote File Include Vulnerability
  • Knusperleicht NewsReporter 1.1 News_Include_Path Remote File Include Vulnerability
  • Voodoo Chat 1.0RC1b File_Path Parameter Remote File Include Vulnerability
  • SaveWeb Portal 3.4 View_Polls.PHP Remote File Include Vulnerability
  • SaveWeb Portal 3.4 Poll.PHP Remote File Include Vulnerability
  • SaveWeb Portal 3.4 Menu_Dx.PHP Remote File Include Vulnerability
  • OZJournal 1.5 M Parameter Cross-Site Scripting Vulnerability
  • OZJournal 1.5 C Parameter Cross-Site Scripting Vulnerability
  • ToendaCMS 1.0.3 Index.PHP S Parameter Cross-Site Scripting Vulnerability
  • TSEP 0.942 Colorswitch.PHP Remote File Include Vulnerability
  • TurnkeyWebTools PHP Simple Shop 2.0 Adminindex.PHP Remote File Include Vulnerability
  • TurnkeyWebTools PHP Simple Shop 2.0 Adminglobal.PHP Remote File Include Vulnerability
  • TurnkeyWebTools PHP Simple Shop 2.0 Login.PHP Remote File Include Vulnerability
  • TurnkeyWebTools PHP Simple Shop 2.0 Menu.PHP Remote File Include Vulnerability
  • TurnkeyWebTools PHP Simple Shop 2.0 Index.PHP Remote File Include Vulnerability
  • TurnkeyWebTools PHP Simple Shop 2.0 Header.PHP Remote File Include Vulnerability
  • PHPCC 4.2 Reactivate.PHP Remote File Include Vulnerability
  • PHPCC 4.2 Register.PHP Remote File Include Vulnerability
  • PHPCC 4.2 Login.PHP Remote File Include Vulnerability
  • Torbstoff News 4 News.PHP Remote File Include Vulnerability
  • YenerTurK Haber 1.0 Default.ASP SQL Injection Vulnerability
  • Visual Events Calendar 1.1 Calendar.PHP Remote File Include Vulnerability
  • PHPPrintAnalyzer 1.1 Index.php Remote File Include Vulnerability
  • Simplog 0.9.3.1 Archive.PHP Cross-Site Scripting Vulnerability
  • phNNTP 1.3 File_newsportal Remote File Include Vulnerability
  • O2PHP 1.1.3 Oxygen Post.PHP SQL Injection Vulnerability
  • MojoGallery Multiple HTML Injection Vulnerabilities
  • Comet WebFileManager 0.9.1 CheckUpload.PHP Remote File Include Vulnerability
  • Hitweb 4.2 REP_INC Remote File Include Vulnerability
  • CLUB Nuke 2.0 Haber_Detay.ASP SQL-Injection Vulnerability
  • CLUB Nuke 2.0 Menu.ASP SQL-Injection Vulnerability
  • PgMarket 2.2.3 Common.Inc.PHP Remote File Include Vulnerability
  • See-Commerce 1.0.625 Owimg.PHP Remote File Include Vulnerability
  • CPG Dragonfly CMS 9.0.6.1 META Cross-Site Scripting Vulnerability
  • CPG Dragonfly CMS 9.0.6.1 ALBUM Cross-Site Scripting Vulnerability
  • CPG Dragonfly CMS 9.0.6.1 Index.PHP Cross-Site Scripting Vulnerability
  • MyBloggie 2.1.3 Admin.PHP Remote File Include Vulnerability
  • MyBloggie 2.1.3 Scode.PHP Remote File Include Vulnerability
  • Drupal 4.7.2 User.Module Cross-Site Scripting Vulnerability
  • PHPMyRing 4.2 IDSITE SQL Injection Vulnerability
  • SaveWebPortal 3.4 Page Parameter Remote File Include Vulnerability
  • Tagger LE 3 Index.PHP Multiple PHP Code Injection Vulnerabilities
  • Tagger LE 3 Sign.PHP Multiple PHP Code Injection Vulnerabilities
  • Tagger LE 3 Tags.PHP Multiple PHP Code Injection Vulnerabilities
  • Spaminator 1.7 Page Parameter Remote File Include Vulnerability
  • Horde Application Framework Services 3.1.1 CONTENT Cross-Site Scripting Vulnerability
  • Horde Application Framework Services 3.1.1 Problem.PHP Cross-Site Scripting Vulnerability
  • Horde Application Framework Services 3.1.1 Go.PHP UNTRUSTED Cross-Site Scripting Vulnerability
  • Horde Application Framework Services 3.1.1 Go.PHP Cross-Site Scripting Vulnerability
  • PHPWCMS 1.2.6 Multiple Remote File Include Vulnerabilities
  • Remository 3.25 Admin.Remository.PHP Remote File Include Vulnerability
  • VWar 1.5 Online.PHP SQL Injection Vulnerability
  • PHPPrintAnalyzer 1.2 Header.inc.PHP Remote File Include Vulnerability
  • MyWebland miniBloggie 1.0 Fname Remote File Include Vulnerability
  • WEBinsta Mailing List Manager 1.3.e Install3.PHP Remote File Include Vulnerability
  • Chaussette My_Log.PHP Remote File Include Vulnerability
  • Chaussette Event_For_Week.PHP Remote File Include Vulnerability
  • Chaussette Event_For_Month.PHP Remote File Include Vulnerability
  • Chaussette Event.PHP Remote File Include Vulnerability
  • Chaussette Evenement.PHP Remote File Include Vulnerability
  • Chaussette My_Smarty.PHP Remote File Include Vulnerability
  • Inprotect 0.21 Zones.PHP Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Products_Copy_Content.PHP MSG Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Products_Copy_Content.PHP PRODUCT_DESC Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Phase_View_Search.PHP Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Products_Copy_Content.PHP PRODUCT_NAME Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Login.PHP PASSWORD Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Login.PHP USERNAME Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Download.PHP Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Design_New_Search.PHP PLAN_DESC Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Design_New_Search.PHP PLAN_NAME Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Design_Modify_Content.PHP Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Components_Modify_Content.PHP MSG Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Components_Copy_Content.PHP MSG Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Components_Copy_Content.PHP COMPONENT_DESC Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Queries_View_Search.PHP Cross-Site Scripting Vulnerability
  • QaTraq 6.7 rc Phase_Delete_Search.PHP Cross-Site Scripting Vulnerability
  • Wheatblog 1.1 Session.PHP Remote File Include Vulnerability
  • myEvent 1.4 Initialize.PHP Remote File Include Vulnerability
  • myEvent 1.4 Event.PHP Remote File Include Vulnerability
  • Joomla Webring 1.0 Remote File Include Vulnerability
  • YaBBSE 1.5.5 b Index.PHP Cross-Site Scripting Vulnerability
  • Mambo Peoplebook 1.0 Component Param.PeopleBook.PHP Remote File Include Vulnerability
  • Mambo Email Publisher 1.2 Help.MMP.PHP Remote File Include Vulnerability
  • VWar 1.5 PAGE Parameter SQL Injection Vulnerability
  • VWar 1.5 War.PHP Cross-Site Scripting Vulnerability
  • VWar 1.5 Calendar.PHP Cross-Site Scripting Vulnerability
  • VWar 1.5 SHOWGAME Parameter SQL Injection Vulnerability
  • VWar 1.5 SORTORDER Parameter SQL Injection Vulnerability
  • VWar 1.5 SORTBY Parameter SQL Injection Vulnerability
  • VWar 1.5 S Parameter SQL Injection Vulnerability
  • BlaBla 4U ForumsII.ASP Cross-Site Scripting Vulnerability
  • BlaBla 4U Trial.ASPCross-Site Scripting Vulnerability
  • Joomla Webring Component 1.0 Admin.Webring.Docs.PHP SQL Injection Vulnerability
  • WEBInsta Mailing List Manager 1.3d InitDB.PHP Remote File Include Vulnerability
  • PHP-Nuke AutoHTML Module 2.0 Local File Include Vulnerability
  • Discloser 0.0.4 Content.PHP Remote File Include Vulnerability
  • Discloser 0.0.4 Indexhead.PHP Remote File Include Vulnerability
  • Lizge V.20 Index.PHP LIZGE Multiple Remote File Include Vulnerability
  • Lizge V.20 Index.PHP BADE Multiple Remote File Include Vulnerability
  • Outreach Project Tool 1.2.6 Remote File Include Vulnerability
  • FusionPHP Fusion News 3.7 Index.PHP Remote File Include Vulnerability
  • DotProject 2.0.4 Query.Class.PHP Remote File Include Vulnerability
  • Reporter Mambo Component 1.0 Reporter.sql.PHP Remote File Include Vulnerability
  • CubeCart 3.0.11 Preview.PHP Cross-Site Scripting Vulnerability
  • CubeCart 3.0.11 Login.PHP Cross-Site Scripting Vulnerability
  • Woltlab Burning Board 2.3.4 Links.PHP SQL Injection Vulnerability
  • Mobotix IP Camera 2.0.5.2 Events.TAR Cross-Site Scripting Vulnerabilities
  • Mobotix IP Camera 2.0.5.2 EVENTPLAYER Cross-Site Scripting Vulnerabilities
  • Mobotix IP Camera 2.0.5.2 CAMERA Cross-Site Scripting Vulnerabilities
  • PHProjekt Content Management Module 0.6.1 Br.Edithelp.PHP Remote File Include Vulnerability
  • PHProjekt Content Management Module 0.6.1 De.Edithelp.PHP Remote File Include Vulnerability
  • PHProjekt Content Management Module 0.6.1 Ct.Edithelp.PHP Remote File Include Vulnerability
  • PHProjekt Content Management Module 0.6.1 Userrating.PHP Remote File Include Vulnerability
  • PHProjekt Content Management Module 0.6.1 Listing.PHP Remote File Include Vulnerability
  • PHProjekt Content Management Module 0.6.1 Cm_Lib.Inc.PHP Remote File Include Vulnerability
  • CPanel 10.8.2 Editit.HTML Cross-Site Scripting Vulnerability
  • CPanel 10.8.2 Showfile.HTML Cross-Site Scripting Vulnerability
  • CPanel 10.8.2 Dohtaccess.HTML Cross-Site Scripting Vulnerability
  • Shadows Rising RPG 0.0.5b Security.Inc.PHP Remote File Include Vulnerability
  • Shadows Rising RPG 0.0.5b Qcms Smarty.Inc.PHP Remote File Include Vulnerability
  • Shadows Rising RPG 0.0.5b Qlib Smarty.Inc.PHP Remote File Include Vulnerability
  • Shadows Rising RPG 0.0.5b Core Smarty.Inc.PHP Remote File Include Vulnerability
  • IPCheck Server Monitor 5.3.2.609 Directory Traversal Vulnerabilit
  • Docebo Products 3.0.4 Class.Definition.PHP Remote File Include Vulnerability
  • Docebo Products 3.0.4 Scorm_Utils.PHP Remote File Include Vulnerability
  • IceWarp Web Mail 5.6 ADMIN Include.PHP File Include Vulnerability
  • IceWarp Web Mail 5.6 Index.HTML File Include Vulnerability
  • IceWarp Web Mail 5.6 Include.PHP File Include Vulnerability
  • Mambo Phpshop Product Scroller Component 1.2 Mod_Phpshop_Allinone.PHP Remote File Include Vulnerability
  • Mambo Phpshop Product Scroller Component 1.2 Mod_Phpshop_Cart.PHP Remote File Include Vulnerability
  • Mambo Phpshop Product Scroller Component 1.2 Mod_Phpshop_Featureprod.PHP Remote File Include Vulnerability
  • Mambo Phpshop Product Scroller Component 1.2 Mod_Phpshop_Latestprod.PHP Remote File Include Vulnerability
  • Mambo Phpshop Product Scroller Component 1.2 Mod_Product_Categories.PHP Remote File Include Vulnerability
  • Mambo Phpshop Product Scroller Component 1.2 Mosproductsnap.PHP Remote File Include Vulnerability
  • Mambo Phpshop Product Scroller Component 1.2 Mod_Phpshop.PHP Remote File Include Vulnerability
  • CEScripts Multiple Scripts Cross-Site Scripting Vulnerability
  • Modernbill 1.6 Config.PHP Remote File Include Vulnerability
  • WikePage 2006.2a Index.PHP Local File Include Vulnerability
  • Invisionix Roaming System Remote 0.2 Pageheaderdefault.Inc.PHP Remote File Include Vulnerability
  • Powergap S.02.PHP Remote File Include Vulnerability
  • Powergap S03.PHP Remote File Include Vulnerability
  • Powergap S04.PHP Remote File Include Vulnerability
  • Powergap Index.PHP Remote File Include Vulnerability
  • Powergap S01.PHP Remote File Include Vulnerability
  • WTCom Web Torrent 0.2.4 SQL Injection Vulnerability
  • MambelFish 1.1 Mambo Component Mambelfish.Class.PHP Remote File Include Vulnerability
  • Mambo Jim Component 1.01 Install.Jim.PHP Remote File Include Vulnerability
  • Blog:CMS 4.1 Blog.PHP Remote File Include Vulnerability
  • Blog:CMS 4.1 Archive.PHP Remote File Include Vulnerability
  • Blog:CMS 4.1 Media.PHP Remote File Include Vulnerability
  • Blog:CMS 4.1 Index.PHP Remote File Include Vulnerability
  • Mambo A6MamboCredits 1.0 Component Remote File Include Vulnerability
  • Joomla Poll Component 1.0.10 Multiple User Session Validation Vulnerability
  • MamboWiki Component 0.9.4 MamboLogin.PHP Remote File Include Vulnerability
  • Coppermine Gallery Component for Mambo 1.0 cpg.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 1_Delete.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 1_Edit.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 1_New.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 2_Delete.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 2_Edit.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 2_Main.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 2_New.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 3_Delete.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 3_Edit.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 3_Main.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 3_New.PHP Remote File Include Vulnerability
  • Sonium Enterprise Addressbook 0.2 1_Main.PHP Remote File Include Vulnerability
  • Mambo AkoComment Module 1.1 mosConfig_absolute_path Remote File Include Vulnerability
  • Mambo CatalogShop Component 1.0 mosConfig_absolute_path Remote File Include Vulnerability
  • Mambo CropImage Component 1.0 mosConfig_absolute_path Remote File Include Vulnerability
  • XennoBB 2.2.1 Icon_Topic SQL Injection Vulnerability
  • 8Pixel.net SimpleBlog 2.0 Comments.ASP SQL Injection Vulnerability
  • SportsPHool 1.0 Remote File Include Vulnerability
  • Tutti Nova 1.6 Class.NovaAdmin.Mysql.PHP Remote File Include Vulnerability
  • Tutti Nova 1.6 Class.NovaEdit.Mysql.PHP Remote File Include Vulnerability
  • Tutti Nova 1.6 Class.NovaRead.Mysql.PHP Remote File Include Vulnerability
  • Fantastic Scripts Fantastic News 2.1.3 Remote File Include Vulnerability
  • Mambo BigAPE-Backup Component 1.1 Remote File Include Vulnerability
  • PHPCodeGenie 3.0.2 Core.PHP Remote File Include Vulnerability
  • DieselScripts Job Site Forgot.PHP SEMAIL Cross-Site Scripting Vulnerability
  • DieselScripts Job Site Forgot.PHP UNAME Cross-Site Scripting Vulnerability
  • Mambo Display MOSBot Manager Component Admin.Admin-Copy_Module.PHP Remote File Include Vulnerability
  • Mambo Display MOSBot Manager Component Toolbar.Admin-Copy_Module.PHP Remote File Include Vulnerability
  • DieselScripts Smart Traffic Index.PHP Remote File Include Vulnerability
  • DieselScripts Diesel Paid Mail Getad.PHP Cross-Site Scripting Vulnerability
  • RedBlog 0.5 Index.PHP Remote File Include Vulnerability
  • Empire CMS 3.7 Checklevel.PHP Remote File Include Vulnerability
  • Doika Guestbook 2.5 GBook.PHP HTML Injection Vulnerability
  • Headline Portal Engine 0.7 Fr.PHP Remote File Include Vulnerability
  • Headline Portal Engine 0.7 Clickerr.PHP Remote File Include Vulnerability
  • Headline Portal Engine 0.7 Loadcatnews.PHP Remote File Include Vulnerability
  • Headline Portal Engine 0.7 Motd.PHP Remote File Include Vulnerability
  • Headline Portal Engine 0.7 Mod.News.PHP Remote File Include Vulnerability
  • Headline Portal Engine 0.7 News.Htmlnews.PHP Remote File Include Vulnerability
  • Headline Portal Engine 0.7 News.Xmlphp.PHP Remote File Include Vulnerability
  • Headline Portal Engine 0.7 Thememaker.PHP Remote File Include Vulnerability
  • Headline Portal Engine 0.7 De.PHP Remote File Include Vulnerability
  • All Topics 1.5 phpBB module SQL Injection Vulnerability
  • VistaBB 2.0.33 Functions_Portal.PHP Remote File Include Vulnerability
  • VistaBB 2.0.33 Functions_Mod_User.PHP Remote File Include Vulnerability
  • PhpCOIN 1.2.3 INCLUDES Remote File Include Vulnerability
  • PhpCOIN 1.2.3 COIN_INCLUDES Remote File Include Vulnerability
  • Pheap 1.1 Config.PHP Remote File Include Vulnerability
  • Zen Cart 1.3.0.2 File Include Vulnerability
  • Zen Cart 1.3 ADD_CART SQL Injection Vulnerability
  • Zen Cart 1.3 Ot_Coupon.PHP SQL Injection Vulnerability
  • AlstraSoft Video Share Enterprise 4.0 MyajaxPHP.PHP Remote File Include Vulnerability
  • Mambo/Joomla Com_comprofiler 1.0 RC2 Plugin.Class.PHP Remote File Include Vulnerability
  • CMS Froggs 0.4 Rejestracja.PHP SQL Injection Vulnerability
  • AlberT-EasySite 1.0 PSA_PATH Remote File Include Vulnerability
  • ProManager 0.73 Note.PHP SQL Injection Vulnerability
  • Interact 2.2 Common.Inc.PHP Remote File Include Vulnerability
  • Interact 2.2 Autoprompter.PHP Remote File Include Vulnerability
  • Fotopholder 2.5 Index.PHP PATH Cross Site Scripting Vulnerability
  • Fotopholder 2.5 Index.PHP Directory Traversal Vulnerability
  • Web3news 0.95 PHPSECURITYADMIN_PATH Remote File Include Vulnerability
  • OlateDownload 3.4 Details.PHP SQL Injection Vulnerability
  • OlateDownload 3.4 Userupload.PHP Cross-Site Scripting Vulnerability
  • OlateDownload 3.4 Details.PHP SQL Injection Vulnerability
  • Yblog Tem.PHP Cross-Site Scripting Vulnerability
  • Yblog Uss.PHP Cross-Site Scripting Vulnerability
  • Yblog Funk.PHP Cross-Site Scripting Vulnerability
  • phpMyWebmin 1.0 Create_File.PHP Remote File Include Vulnerability
  • phpMyWebmin 1.0 Upload_Local.PHP Remote File Include Vulnerability
  • phpMyWebmin 1.0 Upload_Multi.PHP Remote File Include Vulnerability
  • phpMyWebmin 1.0 Change_Preferences2.PHP Remote File Include Vulnerability
  • SiteDepth CMS 3.0.1 Constants.PHP Remote File Include Vulnerability
  • PHP Download Download.PHP Directory Traversal Vulnerability
  • PHP Download Index.PHP Directory Traversal Vulnerability
  • WebspotBlogging 3.0.1 Logincheck.Inc.PHP Remote File Include Vulnerability
  • WebspotBlogging 3.0.1 Global.PHP Remote File Include Vulnerability
  • WebspotBlogging 3.0.1 Mainheader.Inc.PHP Remote File Include Vulnerability
  • WebspotBlogging 3.0.1 Adminheader.Inc.PHP Remote File Include Vulnerability

This entry was posted in N-Stalker Latest Updates. Bookmark the permalink.
Products
About N-Stalker
Contact

Rua Monte Alegre, 61 - cj 81
Sao Paulo, BRA, 05014-000
BRA Phone: +55-11-3868-1997
Contact us